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DETAILED ACTION 
Claim Rejections - 35 USC § 102 

1 . The following is a quotation of the appropriate paragraphs of 35 U.S.C. 1 02 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 

2. Claims 1 and 9 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Ishizaki et al. (US 2002/0156828). 



3. With regard to claims 1 and 9, Ishizaki discloses a system providing virtual 
private network service by using an IP network including a plurality of routers, wherein a 
router, which accommodates a user of the virtual private network service, comprises a 
virtual router unit corresponding to each user of the virtual private network service (Par 
38, Lines 4-6), and the virtual router unit comprising a routing table storing routing 
information for transferring a packet of a corresponding user (Par 38, Lines 10-13), and 
a routing unit controlling a transfer of a packet of a corresponding user by referencing 
said routing table (Par 38, Lines 1-4). 
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Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

5. Claims 2 and 3 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Ishizaki et al. (US 2002/01 56828) In view of Ho et al. (US 2002/01 1 6501 ). 

6. With regard to claims 2 and 3, while the system disclosed by Ishizaki shows 
substantial features of the claimed invention (discussed above), it fails to disclose a 
setting unit setting up a control channel transferring the routing information between 
virtual router units belonging to the same virtual private network or that the control 
channel is an IP tunnel. 

Ho teaches a method of transferring routing information between virtual 
Routers belonging to the same virtual private network using an IP tunnel (Par 44-48). 
Ho discloses setting up a control channel (service tunnel) (Par 46) transferring routing 
information (reachability, addressing, etc)(Par 86) between virtual router units belonging 
to the same virtual private network (Par 44) and that the control channel is an IP tunnel 
(Par 48). Transferring the routing information via an IP tunnel allows the information to 
be transferred securely between the virtual routers since the packets are encrypted and 
remain hidden from other outside the VPN (Par 44). 



Application/Control Number: 09/998,550 Page 4 

Art Unit: 2153 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to transfer the routing information between the virtual 
router units using an IP tunnel. This would have allowed the information to be 
transferred securely since the packets are encrypted in the tunnel and hidden from 
users outside the VPN. 

7. Claim 4 is rejected under 35 U.S.C. 103(a) as being unpatentable over Ishizaki et 
al. (US 2002/0156828) in view of Rao et al. (US 6,674,756). 

8. With regard to claim 4, while the system disclosed by Ishizaki shows substantial 
features of the claimed invention (discussed above), it fails to disclose that identification 
information identifying a virtual private network corresponding to a first virtual router unit 
arranged within a first router is broadcast from the first virtual router unit to other 
routers; reply information is returned from a virtual router unit, which belongs same 
virtual private network as a virtual private network identified according to the 
identification information, to the first virtual router unit; and the first virtual router unit 
detects configuration of a corresponding virtual private network based on the reply 
information. 

Rao teaches a method of detecting configuration of a virtual private network 
wherein identification information identifying a virtual private network is broadcast from a 
first virtual router to other routers (Col 9, Lines 44-51), reply information is returned from 
a virtual router which belongs to the same virtual private network (virtual router replies if 
call request is accepted) (Col 9, Lines 47-51 ), and the first virtual router detects 
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configuration of a corresponding virtual private networl< based on the reply 
(configuration information is returned) (Col 9, Line 66 to Col 10, Line 5). This allows a 
virtual router to obtain configuration information from other virtual routers that support a 
desired connection type, and set up the connection. 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to detect a configuration of a virtual private network using 
the method taught by Rao. The method taught by Rao would have allowed a virtual 
router to obtain configuration information for a desired connection type from other virtual 
routers which support that connection, and initiate that connection. 

9. Claims 5 and 6 are rejected under 35 U.S.C. 1 03(a) as being unpatentable over 
Ishizaki et al. (US 2002/01 56828) in view of Rao et al. (US 6,674,756) in further view of 
Casey (US 6,493,349). 

10. With regard to claim 5, while the system disclosed by Ishizaki shows substantial 
features of the claimed invention (discussed above), it fails to disclose that identification 
information for identifying a virtual private network corresponding to a first virtual router 
unit arranged within a first router is broadcast from the first virtual router unit to other 
routers; reply information is returned from a second virtual router unit, which belongs to 
a same virtual private network as a virtual private network identified according to the 
identification information, to the first virtual router unit; and a control channel for 
transferring the routing information is set up between the first virtual router unit and the 
second virtual router unit. 
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Rao teaches a method of discovering a virtual router on a network wherein 
identification information for identifying a virtual private network corresponding to a first 
virtual router unit arranged within a first router is broadcast from the first virtual router 
unit to other routers (Col 9, Lines 44-51); reply information is returned from a second 
virtual router unit, which belongs to a same virtual private network as a virtual private 
network identified according to the identification information (virtual router replies if call 
request is accepted) (Col 9, Lines 47-51), to the first virtual router unit. 

Casey teaches creation of a control channel for transferring the routing 
information is set up between the first virtual router unit and the second virtual router 
unit. Casey discloses that virtual routers discover each other and create a mesh of 
tunnels between each other to transfer routing information (Col 7, Lines 47-58). This 
allows routing information to be propagated across the network to other virtual routers to 
ensure that packets are properly routed. 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to discover virtual routers using the method taught by Rao 
and exchange routing information between the routers via tunnels as taught by Casey. 
This would have allowed routing information to be transferred between routers to reflect 
changes in the network. 

1 1 . With regard to claim 6, Rao further discloses that the first virtual router unit has 
an authentication client unit making a request to authenticate the first virtual router unit 
(client on first VR invokes authentication server); and the second virtual router unit has 
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an authentication server unit performing authentication of the first virtual router unit at 
the request of the authentication client (Col 9, Line 60 to Col 10, Line 5). 

12. Claims 7 and 8 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Ishizaki et al. (US 2002/01 56828) in view of Ho et al. (US 2002/01 16501 ) in further view 
of RFC 1058. 

1 3. With regard to claims 7 and 8, Ho further discloses removing a control channel 
connected to a router when all sessions have been terminated (Par 130-131). Ho fails to 
specifically disclose that the control channel is removed when a virtual router is deleted 
or updating a configuration map representing a configuration of the VPN after a 
predetermined time period elapses from when the control channel is removed. 

RFC 1058 discloses a well-known protocol to collect information about the 
configuration of a network and share the information among routers in the network. RFC 
1058 discloses that a timer is maintained for each entry in the routing table. It is reset 
every time an update message is received from a neighboring router. If the timer 
expires, the neighboring router is assumed to have failed and the table is updated to 
indicate that the router is unreachable (Page 11, Section 2.1). RFC 1058 further 
discloses that the routing table entries are not deleted until a second timer, the 
"garbage-collection" timer, expires. This allows other routers to be notified before the 
routing table entry is deleted. Use of a protocol such as RIP would have allowed a 
virtual router in the system disclosed by Ishizaki and Ho to determine when another 
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virtual router had been deleted, and subsequently remove any control connections and 
update the configuration map to reflect the change In the network. 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to detect when a virtual router has been deleted, remove 
the control connection attached to it, and update the configuration tables after a 
predetermined time has passed. 

Conclusion 

14. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

1 5. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Aaron Strange whose telephone number is 571-272- 
3959. The examiner can normally be reached on M-F 8:30-5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Glen Burgess can be reached on 571-272-3949. The fax phone number for 
the organization where this application or proceeding is assigned is 703-872-9306. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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